3. Certificate Requirements for EAP-TLS architecture
(EAP tunnel termination on CPPM)
User Certificate
Root CA Cert
Signing CA Cert
Radius CA Cert
Root CA in Trusted
Root CA list
4. Certificate Requirements for EAP-TLS architecture
(EAP tunnel termination on Controller)
User Certificate
Server Cert
Trusted CA Cert
Root CA Cert
Signing CA Cert
Root CA in Trusted
Root CA list
6. Steps for EAP-TLS (Termination on CPPM)
• Creating CA & Signing CA on CPPM
• Configuring Controller
– SSID profile
– Dot1x profile
– Server & Server Group
– AAA profile
– VAP Profile
–Mapping to AP-group
• Configuring Device & Services in CPPM
• Creating CSR, Radius cert and uploading it
• Creating User in CPPM
• Creating Client Certificates
• Checking Access Tracker
• Troubleshooting from Controller
51. Certificate Requirements for EAP-PEAP architecture
(EAP tunnel termination on CPPM)
Root CA Cert
Username: Employee1
Password:xxxxxx
Root CA in Trusted Signing CA Cert
Radius CA Cert
Root CA list
52. Certificate Requirements for EAP-PEAP architecture
(EAP tunnel termination on Controller)
Server Cert
Trusted CA Cert
Root CA Cert
Username: Employee1
Password:xxxxxx
Root CA in Trusted Signing CA Cert
Root CA list
69. Check the service that is being used in case failed
authentication
In the below output for some reason its hitting wrong Service “test123”, while
name of our service is “Company_ABCD-EAP-PEAP”